postfix and selinux - newbie
John Esquivel
johne7 at cableone.net
Mon Sep 26 01:41:30 UTC 2005
My yum service recently updated selinux policy which I believe broke my
postfix service. I was guessing that selinux does not like me using a
non-standard port for postfix stmp, but then again I am a newbie.
Is there a way to disable just the postfix part of selinux? I have done
this for samba by using the security level gui, but postfix isn't listed
in the gui. For now I can set selinux to permissive then restart
postfix (using the service config gui), then change selinux back to
enforced. This works but this machine gets rebooted weekly and then
postfix fails, also I don't want to leave selinux off completely. I am
running fc4, postfix, amavisd, clamav, and spamassasin.
-JohnE
$ egrep 'fatal:' /var/log/maillog
Sep 25 15:06:22 lin3test postfix/master[6967]: fatal: bind 192.168.1.11
port 10050: Permission denied
Sep 25 15:06:23 lin3test postfix/postfix-script: fatal: the Postfix mail
system is not running
Log report:
/etc/cron.daily/0check4updates:
Updated Packages
selinux-policy-targeted.noarch 1.27.1-2.1
updates
squid.i386 7:2.5.STABLE11-1.FC4
updates
xinitrc.noarch 4.0.18.1-1
updates
/etc/cron.daily/yum.cron:
/sbin/restorecon reset /etc/postfix context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/postfix-script context
system_u:object_r:etc_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /etc/postfix/TLS_LICENSE context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/transport context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/relocated context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/canonical context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/generic context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/makedefs.out context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/post-install context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/header_checks context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/main.cf context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/master.cf context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/postfix-files context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/LICENSE context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/access context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store context
root:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/main.cf.default context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/master.cf.bak context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/master.cf.orig context
root:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/main.cf.new context
root:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/main.cf.orig context
root:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/master.cf.new context
root:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/store/main.cf.bak context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /etc/postfix/virtual context
system_u:object_r:etc_t->system_u:object_r:postfix_etc_t
/sbin/restorecon reset /usr/libexec/postfix/anvil context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/bounce context
system_u:object_r:bin_t->system_u:object_r:postfix_bounce_exec_t
/sbin/restorecon reset /usr/libexec/postfix/cleanup context
system_u:object_r:bin_t->system_u:object_r:postfix_cleanup_exec_t
/sbin/restorecon reset /usr/libexec/postfix/discard context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/error context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/flush context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/lmtp context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/local context
system_u:object_r:bin_t->system_u:object_r:postfix_local_exec_t
/sbin/restorecon reset /usr/libexec/postfix/master context
system_u:object_r:bin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/libexec/postfix/nqmgr context
system_u:object_r:bin_t->system_u:object_r:postfix_qmgr_exec_t
/sbin/restorecon reset /usr/libexec/postfix/oqmgr context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/pickup context
system_u:object_r:bin_t->system_u:object_r:postfix_pickup_exec_t
/sbin/restorecon reset /usr/libexec/postfix/pipe context
system_u:object_r:bin_t->system_u:object_r:postfix_pipe_exec_t
/sbin/restorecon reset /usr/libexec/postfix/proxymap context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/qmqpd context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/scache context
system_u:object_r:bin_t->system_u:object_r:postfix_smtp_exec_t
/sbin/restorecon reset /usr/libexec/postfix/showq context
system_u:object_r:bin_t->system_u:object_r:postfix_showq_exec_t
/sbin/restorecon reset /usr/libexec/postfix/smtp context
system_u:object_r:bin_t->system_u:object_r:postfix_smtp_exec_t
/sbin/restorecon reset /usr/libexec/postfix/smtpd context
system_u:object_r:bin_t->system_u:object_r:postfix_smtpd_exec_t
/sbin/restorecon reset /usr/libexec/postfix/spawn context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/tlsmgr context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/trivial-rewrite context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/verify context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/libexec/postfix/virtual context
system_u:object_r:bin_t->system_u:object_r:postfix_exec_t
/sbin/restorecon reset /usr/sbin/postalias context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postcat context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postdrop context
system_u:object_r:sbin_t->system_u:object_r:postfix_postdrop_exec_t
/sbin/restorecon reset /usr/sbin/postfix context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postkick context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postlock context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postlog context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /usr/sbin/postmap context
system_u:object_r:sbin_t->system_u:object_r:postfix_map_exec_t
/sbin/restorecon reset /usr/sbin/postqueue context
system_u:object_r:sbin_t->system_u:object_r:postfix_postqueue_exec_t
/sbin/restorecon reset /usr/sbin/postsuper context
system_u:object_r:sbin_t->system_u:object_r:postfix_master_exec_t
/sbin/restorecon reset /var/spool/postfix context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/trace context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/defer context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/defer/A context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/defer/4 context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/defer/D context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/defer/3 context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/bounce context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_bounce_t
/sbin/restorecon reset /var/spool/postfix/incoming context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/maildrop context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_maildrop_t
/sbin/restorecon reset /var/spool/postfix/maildrop/176C910D808A context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_maildrop_t
/sbin/restorecon reset /var/spool/postfix/corrupt context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/private context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/relay context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/local context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/trace context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/scache context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/error context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/defer context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/bounce context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/ifmail context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/lmtp context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/maildrop context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/cyrus context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/virtual context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/smtp context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/verify context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/old-cyrus context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/rewrite context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/proxymap context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/tlsmgr context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/anvil context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/uucp context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/discard context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/private/bsmtp context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_private_t
/sbin/restorecon reset /var/spool/postfix/hold context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/deferred context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/deferred/A context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/deferred/4 context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/deferred/D context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/deferred/3 context
root:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/pid context
system_u:object_r:mail_spool_t->system_u:object_r:var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.bounce context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/inet.10050 context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.cleanup context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.local context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.defer context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/master.pid context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/inet.127.0.0.1:25 context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/inet.smtp context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/inet.192.168.1.11:10050
context root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.smtp context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/pid/unix.pre-cleanup context
root:object_r:mail_spool_t->system_u:object_r:postfix_var_run_t
/sbin/restorecon reset /var/spool/postfix/public context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/pre-cleanup context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/qmgr context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/pickup context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/flush context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/showq context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/public/cleanup context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_public_t
/sbin/restorecon reset /var/spool/postfix/active context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/saved context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_t
/sbin/restorecon reset /var/spool/postfix/flush context
system_u:object_r:mail_spool_t->system_u:object_r:postfix_spool_flush_t
More information about the fedora-list
mailing list